CVE-2024-36331 | THREATINT

Description

Improper initialization of CPU cache memory could allow a privileged attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity.

PUBLISHED Reserved 2024-05-23 | Published 2025-09-06 | Updated 2025-09-08 | Assigner AMD

LOW: 3.2CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:L/A:N

Problem types

CWE-665 Improper Initialization

Product status

Default status

affected

GenoaPI_1.0.0.F

unaffected

Default status

affected

EmbGenoaPI-1.0.0.A

unaffected

Default status

affected

EmbGenoaPI-1.0.0.A

unaffected

References

www.amd.com/...es/product-security/bulletin/AMD-SB-5007.html

www.amd.com/...es/product-security/bulletin/AMD-SB-3014.html

cve.org (CVE-2024-36331)

nvd.nist.gov (CVE-2024-36331)

Download JSON

help @ threatint.eu